Privilege escalation vulnerability in Microsoft Exchange Server

Описание

An improper handling of web requests was found in Microsoft Outlook Web Access. By exploiting this vulnerability malicious users can gain privileges. A successful exploit allows attackers to perform content/script injection attacks, make user disclose sensitive information. This vulnerability can be exploited remotely via a specially designed email containing a malicious link.

Первичный источник обнаружения

• MS17-015
  CVE-2017-0110
  

Связанные продукты

• Microsoft-Exchange-Server

Список CVE

• CVE-2017-0110
  warning

Список KB

• 4012178

Смотрите также

Узнай статистику распространения уязвимостей в своем регионе statistics.securelist.com